US9386105B2ActiveUtilityA1

Techniques for dynamic domain-based isolation

44
Assignee: ARENAS YINAPriority: Nov 2, 2011Filed: Nov 2, 2011Granted: Jul 5, 2016
Est. expiryNov 2, 2031(~5.3 yrs left)· nominal 20-yr term from priority
H04L 63/1466H04L 63/10G06F 2221/2125G06F 2221/2119G06F 21/53G06F 16/9566H04L 67/02G06F 17/30887H04L 67/16H04L 61/305H04L 61/15H04L 2101/35H04L 61/45H04L 67/51
44
PatentIndex Score
1
Cited by
41
References
11
Claims

Abstract

Techniques for dynamic domain-based isolation are described. An apparatus may comprise a domain name component operative to receive a domain name request for a uniform resource locator, the domain name component operative to resolve the domain name request 105 on a wildcard entry in a domain name table, a receiving component operative to receive a request for a web application at the uniform resource locator, the uniform resource locator having been dynamically assigned to the web application, and an application identification component operative to determine which hosted web application of a plurality of hosted web applications corresponds to the requested web application on the basis of the uniform resource locator. Other embodiments are described and claimed.

Claims

exact text as granted — not AI-modified
The invention claimed is: 
     
       1. An apparatus, comprising:
 a logic device; 
 a receiving component operative on the logic device to receive, at a host web server from a client, a request for a web application hosted by the host web server at a uniform resource locator, the uniform resource locator having a domain separate from a domain of the host web server dynamically assigned to the web application during installation of the web application wherein the domain name includes a user-specific identifier which uniquely identifies a user and an application identifier; 
 an application identification component operative at the host web server to determine which hosted web application of a plurality of hosted web applications corresponds to the requested web application on the basis of the uniform resource locator; and 
 a domain generator component operative on the logic device to generate and dynamically assign the uniform resource locator to the web application during installation of the web application; and 
 a security component operative on the logic device to determine a set of security permissions for the web application, the security component operative to apply the security permissions to the received request. 
 
     
     
       2. The apparatus of  claim 1 , comprising a domain name component operative on the logic device to receive a domain name request for the uniform resource locator, and resolve the domain name request based on a wildcard entry in a domain name table. 
     
     
       3. The apparatus of  claim 2 , the wildcard entry in the domain name table comprising a single entry for a plurality of applications, wherein a unique uniform resource locator was dynamically assigned for each of the plurality of applications, the wildcard entry comprising a subdomain with an identifier portion and a wildcard portion. 
     
     
       4. The apparatus of  claim 1 , comprising an application hosting component operative on the logic device to return a response to the request using the web application. 
     
     
       5. The apparatus of  claim 1 , the web application comprising a script-based application accessible via a web browser. 
     
     
       6. A method, comprising:
 receiving at a host web server a request for a web application hosted by the host web server at a uniform resource locator, the uniform resource locator including a domain separate from a domain of the host web server and having been dynamically assigned to the web application by a hosting entity of the host web server at a time of installation wherein the uniform resource locator includes a domain name having a user-specific identifier which uniquely identifies the user and an application identifier; 
 determining at the host web server which hosted web application of a plurality of hosted web applications corresponds to the requested web application on the basis of the uniform resource locator; 
 returning a response to the request using the web application; 
 determining a set of security permissions for the web application; and 
 applying the security permissions to the received request wherein the uniform resource locator is dynamically assigned to the web application at installation. 
 
     
     
       7. The method of  claim 6 , comprising:
 receiving a domain name request for the uniform resource locator the plurality of hosted web applications having different domains; and 
 resolving the domain name request based on a wildcard entry in a domain name table. 
 
     
     
       8. The method of  claim 7 , the wildcard entry in the domain name table comprising a single entry for a plurality of applications for a user, wherein a unique uniform resource locator was dynamically assigned for each of the plurality of applications, the wildcard entry comprising a subdomain with an identifier portion and a wildcard portion. 
     
     
       9. An article of manufacture comprising a storage memory unit containing instructions that when executed cause a system to:
 receive a domain name request for a uniform resource locator; 
 resolve the domain name request based on a wildcard entry in a domain name table; 
 receive a request for a web application hosted by the host web server at the uniform resource locator, the uniform resource locator including a sub-domain of a domain of the host web server and having been dynamically assigned to a particular web application by a hosting entity of the host web server, the domain name comprising a user-specific identifier which uniquely identifies the user and an application identifier, the application identifier having been generated for the web application at installation; and 
 determine at the host web server which hosted web application of a plurality of hosted web applications corresponds to the requested web application on the basis of the uniform resource locator; 
 determine a set of security permissions for the web application; and 
 apply the security permissions to the received request wherein the uniform resource locator is dynamically assigned to the web application at installation. 
 
     
     
       10. The article of  claim 9 , the wildcard entry in the domain name table comprising a single entry for a plurality of applications for a user, wherein a unique uniform resource locator was dynamically assigned for each of the plurality of applications, the wildcard entry comprising a subdomain with an identifier portion and a wildcard portion. 
     
     
       11. The article of  claim 9 , further comprising instructions that when executed cause the system to return a response to the request using the web application.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.